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Step 200: Receive an Email message | 


No 




Step 201 : Check if Sender email address format is correct, j 




Yes,, 




Step 202: Create a Check Sender Request (401) to be sent to 
the Data Center (1 02). The Request includes Sender email 
address and all recipients' email addresses. 



f 

Step 203: Sign and Encrypt Request using Crypto Engine (34). j 



Step 204: Send signed and encrypted Request to Data 
Center (102). 



Step 205: Receive signed and encrypted Response from 
Data Center (102). 



T 



Error Response 



Step 206: Decrypt and verify Response using Urypto 
Engine (34). 



Verified, , 



Verifications Fail 



Step 207: Check the Response (402) for the Following cases: 

a) Sender is in the black list. 

b) Sender is in the white list. 

c) Sender is in the unconfirmed list. In this case, the 
Response will also contain the number (AO of 
Confirmation emails sent to the sender that has not been 
Answered and the time (7) the Data Center has been 
waiting for the answer. 



Case (a) 



Case (c) 



Case (b) 



Step 208: 

Dispose the 
message. 




Step 210: Determine 
whether to deliver, 
dispose, or hold the 
message based on 
/Yand T according 
to a policy. 



Step 209: 

Deliver the 
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Step 211: Hold the 
message (store it in 
Temporary Message 
Storage (36)). 
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Step 300: Periodically starts (30 minutes, for example) 1 



Step 301: Compile a list of Senders for the messages stored 
in the Temporary Message Storage (36) 



Step 302: Create an Update Status Request (403) containing 
the list of Senders resulted from Step 301 . 



Step 303: Sign and Encrypt Request using Crypto Engine (34). I 



Step 304: Send signed and encrypted Request to Data 
Center (102). 



Step 305: Receive signed and encrypted Response from 
Data Center (102). 



Error Response 



Step 306: Decrypt and verify Response using Crypto 
Engine (34). 



Verification Fas! 



Verified^ 

Repeated for each Sender Status listed in the Update Status Response (404) 
i 



Step 307: For each sender in the Update Status Response (404) 
check whether: 

a) Sender is in the black list. 

b) Sender is in the white list. 

c) Sender is in the unconfirmed list. In this case, the 
Response will also include the number (AO of 
Confirmation emails sent to the sender that has not been 
Answered and the time (7) the Data Center has been 
Waiting for the answer. 



Case (a) u 



Step 308: Dispose 
all the messages 
from that Sender. 



Case (c) 



u Case (b) 



Step 309: Deliver 
all messages from 
that Sender. 



Step 310: Determine 
whether to deliver, 
dispose, or continue 
to hold the message 
based on N, T 
according to a policy. 



Step 311: Continue 
holding the messages 
in Temporary Message 
Storage (36). 
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Spam Filter Sends: 



Check Sender Request (401) 



SPAM Filter Type 



Sender Email Address 



Subject 



Time 



Number of Recipients 



List of Recipients (Each item 
includes Recipient's email 
address and recipient type, 
such as To, Cc, or Bcc.) 



Random Number 



Data Center Returns: 



Sender Status Response (402) 



Sender Email Address 



Sender Status (in white list, in black list, 
or in unconfirmed list) 



Number {N) of unanswered confirmation 
emails. (Present only when Sender is in 
the unconfirmed list) 



The maximum time (f) the data center 
has been waiting for the answer to the 
confirmation emails. (Present only when 
Sender is in the unconfirmed list) 



Pass code (Present when pass code is 
required for the white list sender). 



Random Number 



Spam Filter Sends: 



Data Center Returns: 



Update Status Request (403) 



SPAM Filter Type 



Number of Senders 



List of Senders 



Random Number 



Update Status Response (404) 



Number of Senders 



List of Sender Status. Each item 
contains the same data items in 
Sender Status Response (402) 
except the Random Number. 



Random Number 
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Step 500: Receive signed and encrypted Check Sender Request (401) 



Step 501 : Decrypt and verify the 
Request using Crypto Engine (26) 



Verification Fail 



Step 513: Return 
Error Response. 



Step 502: Check whether Sender Email Address is: a) In the white list 
(21), b) In the black list (22), c) In the unconfirmed list (23),or d) Not 
in any of the lists. 



Cases (a), (b) 



[Cases (c), (d) 

Step 505: 

Check if confirmation n 0 
^email for the same message, 
has been sent 



Yes 



Step 506: Send 
confirmation 
email to Sender 
email address. 



Step 507: 

Update the 
Unconfirmed 
List (23). 



Step 508: Compose an appropriate Sender Status Response (402). 



I 



Step 509: Sign and encrypt Sender Status Response (402) using 
Crypto Engine (26). 



Step 510: Send signed and encrypted Response to SPAM Filter 



Step 511: Update Sender - Recipient Associations Database (24) 



Step 512: Alert the Data Center Operator if certain predetermined SPAM 
signatures are detected in the Sender-Recipient Association Database. 
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Step 600: Receive signed and encrypted Update Status Request (403) 


< 




Step 601 : Decrypt and verify the Request using Crypto Engine (26) 




Verification Fail 


r 


Step 602: Create an Update Status Response 
(404) with an empty List of Sender Status. 




Step 607: Return 
Error Response 



T 



Repeated for each Sender in the List of Update Status Request (403). 



Step 603: Get Sender Status (whether the Sender is in the 
black list (22), in the white list (21), in the unconfirmed list (23), 
or not in any of the lists.) 



Step 604: Add the Sender Email Address and its Status to the List of 
Sender Status in the Update Status Response (404). 



Step 605: Sign and encrypt Update Status Response (404) using 
Crypto Engine (26) 



Step 606: Send signed and encrypted Response to SPAM Filter 
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From: antispamcenter@zixcorp.com 
Sent: Friday, April 25, 2003 10:39 AM 
To: john@example.com 
Subject: Re: Conference call schedule 

Your email message titled "Conference call schedule" sent at Friday, 
April 25, 2003 10:25 AM has been held temporarily and will not be 
delivered to those recipients who use Zix SPAM filter. The reason is 
because you are not currently in the trusted sender database. To be 
added to the database, click the following hyperlink and enter the 
authorization code below. Your original message will be delivered and 
you will be added to the trusted sender database. After that, you will 
not receive any more notices like this one and your future messages 
will be immediately delivered to all recipients. 
http://antispam.zixcorp.com/antiSDam.cai7id = 8afc2389cb98d401 

Authorization Code : 




FIG. 7 
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Sender Response Processor 



Step 800: Receive HTTP Request resulted from 
Sender clicking the hyperlink in the confirmation email. 




t 


Step 801: Return a web form asking the Sender to 
enter the Authorization Code. 




r 


Step 802: Receive Authorization Code entered by Sender 




t 


Step 803: Check if Authorization Code is correct. 




Correct Incorrect 

r 1 r 


Step 804: Move Sender 
from Unconfirmed list (23) 
to White List (21). 


Step 806: Return a web 
page telling the Sender 
that the Authorization Code 
is not correct and asking 
the Sender to try again. 
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eturn a web 
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Email notice sent when the pass code requirement is turned on 

From: antispamcenter@zixcorp.com 
Sent : Friday, April 25, 2003 10:39 AM 
To: john@example.com 
Subject: Pass code required 

According to user complaints and the data we collected, a large number 
of unsolicited email messages appear to be sent from your email address 
iohn@example.com . It is possible that a spammer is sending out spams 
pretending to be from your email address. In order to filter out spams 
while letting your messages to go through, you need to include the 
following pass code on the first line of every email message you send 
out. The pass code will allow your messages to pass through the Zix 
SPAM filters while blocking spammer's messages pretending to be from 
you. Please note, a message sent without the correct pass code will be 
blocked by the Zix SPAM filters. 

370urebn3s983sg 

From the following site, you may download plug-ins that will 
automatically insert the pass code into every message you send out. The 
plug-in will put the pass code in a header of the email message, 
instead of on the first line, so that it will not be seen by the 
recipient. 

http://www.zixcorp.com/antispam/download.html 



Email notice sent when the pass code requirement is turned off 

From: antispamcenter@zixcorp.com 
Sent : Friday, April 25, 2003 10:39 AM 
To: john@example.com 
Subject: Pass code not required any more 

We are pleased to inform you that the spammer who has been sending 
spams pretending to be from your emails address has been tracked down 
and his ISP has terminated his account. He is not sending any more 
spams pretending to be from your email address. As a result, we have 
turned off the pass code requirement on your email address. You do not 
have to include the pass code in your email messages any more. 
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